Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support DAVE #577

Open
SpiritOTHawk opened this issue Dec 14, 2024 · 1 comment
Open

Support DAVE #577

SpiritOTHawk opened this issue Dec 14, 2024 · 1 comment
Assignees
Labels
type:feat New feature or request

Comments

@SpiritOTHawk
Copy link

SpiritOTHawk commented Dec 14, 2024

Description

No response

Suggestions

Add support for Discord's Audio & Video End-to-End Encryption (DAVE) protocol.

Alternatives

Official discord client

Additional Context

Library: https://github.com/discord/libdave
Protocol whitepaper: https://github.com/discord/dave-protocol https://daveprotocol.com/

@SpiritOTHawk SpiritOTHawk added the type:feat New feature or request label Dec 14, 2024
@SpacingBat3
Copy link
Owner

SpacingBat3 commented Dec 16, 2024

It might actually get support from Discord directly, given it is something worked on by Discord (Web Crypto API might not me something great and complex like in Node's to support multiple algorithms and bunch of SSL but at least it can do cryptographically safe data generation and I suppose that might be enough, although I have little experience with stuff like diffie-hellman key exchange, password hashing and sync/async encryption algorithms implementation). That makes it low-priority, at least unless it reaches the stage I find some info Discord doesn't care about web or call it as part of "official clients".

That being said, I kinda didn't noticed that Discord actually had some plans to take care about e2ee. I'm still pesimistic about it tho, e2ee implementations within centralised services have a bad habbit of key exchange being handled by that service, and if that process is being obfuscated or badly taken care of, there are no guarantees that key you use isn't being stored somewhere or MITM isn't happening. Still, I didn't check the DAVE specifically so I have very little knowledge on it.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
type:feat New feature or request
Projects
None yet
Development

No branches or pull requests

2 participants